Date: Thu, 7 Nov 1996 23:40:31 -0800 (PST) From: John-Mark Gurney <jmg@nike.efn.org> To: Peter Wemm <peter@spinner.DIALix.COM> Cc: Chris Timmons <skynyrd@tahoma.cwu.edu>, FreeBSD-gnats@freefall.freebsd.org, GNATS Management <gnats@freefall.freebsd.org>, freebsd-bugs@freefall.freebsd.org Subject: Re: bin/1973: pppd uses /etc/ppp/options.tty after command line args Message-ID: <Pine.NEB.3.95.961107233421.352X-100000@nike> In-Reply-To: <199611080540.NAA25079@spinner.DIALix.COM>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 8 Nov 1996, Peter Wemm wrote: > It's part of the security design, any changes here should be done rather > carefully. pppd is supposedly able to be configured to be able to be run > relatively safely setuid-root on an "open" system, and the options.<tty> > is part of this. If you allow normal users to defeat the options.tty > ordering, it may as well not be there. If you have a "closed" system > where users are not able to mess with the command line options, it's not > an issue (as you pointed out). > > IMHO, a compile-time option would be the safest thing here. actually.. I was thinking about how the code is layed out.. and if it's done the proper way the only place that it could affect anything would be if it's in the /etc/options file? would that satisfy the requirements? thanks for your comments... ttyl.. John-Mark gurney_j@efn.org http://resnet.uoregon.edu/~gurney_j/ Modem/FAX: (541) 683-6954 (FreeBSD Box) Live in Peace, destroy Micro$oft, support free software, run FreeBSD (unix)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.3.95.961107233421.352X-100000>